ATP200 Anti-Malware is blowing up on Microsoft.VCLibs.110.00_11.0.51106.1_x86__8wekyb3d8bbwe.Appx
Message is:
Virus infected SSI:N Type:Threat Intelligence Machine Learning Virus:Malicious Virus File:Microsoft.VCLibs.110.00_11.0.51106.1_x86__8wekyb3d8bbwe.Appx
I've scanned the hash and it's Undetected in VirusTotal.
The IP address that is being connected to it is associated with edgecastcdn and the IP is not listed in BrightCloud. The IP is being connected to by several processes including, the Print Spooler, Adobe Creative Cloud, and other things.
Anyone seeing this?
Best Answers
-
Hi @ChipConnJohn ,
The File hash is not in latest TIML signature.
Please kindly check you have installed the latest signature .
And check if the issue still persist.
Thank you
0 -
It has stopped alerting. Thanks.
1
All Replies
-
Hi @ChipConnJohn ,
Greeting Forum, Could you kindly provide the IP address and FIle hase ?
We will check that.
Thank you
0 -
Hash:
1A4EA694B87EE8542F6FE82D6F247EEF
IP: 72.21.81.240
Thanks!
0 -
Hi @ChipConnJohn ,
The File hash is not in latest TIML signature.
Please kindly check you have installed the latest signature .
And check if the issue still persist.
Thank you
0 -
It has stopped alerting. Thanks.
1
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight